CVE-2026-31420

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The bridge MRP component fails to validate user-supplied interval values from netlink in the br mrp start test(), br mrp start in test(), and br mrp start in test parse() functions. When an interval of 0 is provided, the delayed work functions br mrp test work expired() and br mrp in test work expired() reschedule themselves with zero delay. This results in a tight loop on system percpu wq that continuously allocates and transmits MRP test frames, leading to system memory exhaustion and a kernel panic via Out-Of-Memory (OOM) deadlock (a state where the system cannot allocate memory to resolve the memory shortage).

Recommendations Apply the fix that implements NLA POLICY MIN(NLA U32, 1) in the nla policy tables for IFLA BRIDGE MRP START TEST INTERVAL and IFLA BRIDGE MRP START IN TEST INTERVAL to reject zero values at the netlink attribute parsing layer.